Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/31da5afb-2f8a-4919-bba2-563e20cc5e6e.roa
File: 31da5afb-2f8a-4919-bba2-563e20cc5e6e.roa (raw, json)
Hash identifier: IMF+lav/RkbdrlLU9k33xDiapM3YA4AL/3RPj5Fsq34=
Subject key identifier: AB:05:1A:06:EF:B2:36:62:33:AB:03:BA:3B:7B:F3:92:96:98:3D:A9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6E5AD0D6EC7BCD6C5D57DABB82C97581BD52A808
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/31da5afb-2f8a-4919-bba2-563e20cc5e6e.roa
Signing time: Thu 06 Jul 2023 00:00:00 +0000
ROA not before: Thu 06 Jul 2023 00:00:00 +0000
ROA not after: Thu 10 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:5a:d0:d6:ec:7b:cd:6c:5d:57:da:bb:82:c9:75:81:bd:52:a8:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 6 00:00:00 2023 GMT
Not After : Aug 10 23:59:59 2023 GMT
Subject: serialNumber=905995ea514dc3d120960e63d6644d796624f2abe72c7255013a3c9155fd5a46, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:91:a8:30:8c:b3:1c:c3:26:db:06:e2:a2:9d:
5c:73:3e:2e:15:06:34:eb:9e:50:7f:2c:21:e7:e6:
32:19:09:a3:77:00:5f:48:29:43:dd:e5:2d:af:d7:
78:35:2b:4d:fe:91:97:55:f4:84:de:ac:95:46:95:
4e:65:95:6c:0b:40:9d:9d:83:82:71:62:58:94:5a:
9c:5b:ab:c7:2e:8e:99:e8:7e:5f:b2:2a:fd:12:f9:
00:d7:05:84:9c:9e:29:ec:01:f7:95:a6:0d:a6:74:
c0:5f:16:8f:8a:1c:00:01:2e:ed:07:cf:4f:77:e2:
5b:11:56:0f:4e:40:5e:95:9c:0a:2e:d1:31:bd:80:
c2:b1:ad:c3:82:c9:6c:fb:56:48:d3:62:59:d6:b9:
d1:60:2a:30:8d:d5:76:7e:83:85:55:b8:95:bd:e0:
04:f4:83:af:ee:d9:cb:3d:3a:79:75:a7:19:d8:27:
aa:eb:4e:7c:c5:f2:bb:86:b8:9c:cc:5e:01:7c:00:
cc:40:94:64:56:77:98:e6:f6:81:d6:c5:19:ef:4e:
85:9e:2e:7a:9a:62:41:aa:56:6b:51:bd:9b:e5:74:
32:fd:f1:28:2a:6b:84:72:d5:6d:6c:3d:0a:b9:01:
e9:f2:04:3d:b6:05:b7:fe:97:f2:82:3c:6b:8d:c1:
61:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:05:1A:06:EF:B2:36:62:33:AB:03:BA:3B:7B:F3:92:96:98:3D:A9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/31da5afb-2f8a-4919-bba2-563e20cc5e6e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
90:bb:e1:f2:9b:26:e2:c5:87:7a:ba:a6:62:57:37:f7:e4:35:
9c:cb:16:a0:6d:6a:db:60:b4:42:c2:62:b5:4b:9e:29:33:27:
0b:27:b2:b6:2a:26:22:3e:73:f6:9c:b9:40:53:e8:6d:c0:40:
08:e3:c4:0b:82:0d:17:db:8f:d8:95:c5:a2:a8:d3:11:23:8a:
f1:5f:8a:13:90:36:08:da:14:83:39:e3:06:57:38:e4:94:39:
df:8f:de:62:39:e3:ec:04:5b:b7:50:3a:16:4c:4d:f9:a1:a0:
0d:2d:6a:5e:30:e3:c0:04:7c:c9:69:f7:de:5e:0f:74:88:65:
f3:4f:13:9d:ba:36:65:77:d1:3e:d7:54:ac:8d:b6:6b:3b:f2:
3d:0b:ff:e1:4a:19:48:45:ae:7d:f0:15:46:ed:95:e4:ac:22:
66:e8:a8:a7:6f:39:be:fd:00:d8:76:17:ce:a8:9a:f0:56:45:
75:58:dd:22:75:8b:05:c5:03:20:7d:6d:f7:c4:43:1b:8f:8c:
7f:7f:2f:c2:52:ab:b9:41:11:ec:35:03:43:73:4c:42:5f:93:
07:7a:e5:66:ad:f6:08:99:14:59:b6:94:6e:e6:7c:9a:77:83:
e3:12:3c:dd:76:c2:a8:1f:35:05:23:52:fc:4f:65:55:13:ee:
3e:66:6d:9a
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUblrQ1ux7zWxdV9q7gsl1gb1SqAgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwNzA2MDAwMDAwWhcNMjMwODEwMjM1OTU5
WjB6MUkwRwYDVQQFE0A5MDU5OTVlYTUxNGRjM2QxMjA5NjBlNjNkNjY0NGQ3OTY2
MjRmMmFiZTcyYzcyNTUwMTNhM2M5MTU1ZmQ1YTQ2MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCtkagwjLMcwybbBuKinVxzPi4VBjTrnlB/LCHn5jIZCaN3
AF9IKUPd5S2v13g1K03+kZdV9ITerJVGlU5llWwLQJ2dg4JxYliUWpxbq8cujpno
fl+yKv0S+QDXBYScninsAfeVpg2mdMBfFo+KHAABLu0Hz0934lsRVg9OQF6VnAou
0TG9gMKxrcOCyWz7VkjTYlnWudFgKjCN1XZ+g4VVuJW94AT0g6/u2cs9Onl1pxnY
J6rrTnzF8ruGuJzMXgF8AMxAlGRWd5jm9oHWxRnvToWeLnqaYkGqVmtRvZvldDL9
8Sgqa4Ry1W1sPQq5AenyBD22Bbf+l/KCPGuNwWEVAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUqwUaBu+yNmIzqwO6O3vzkpaYPakwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzMxZGE1YWZiLTJmOGEtNDkxOS1iYmEyLTU2M2UyMGNjNWU2ZS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAJC74fKbJuLFh3q6pmJXN/fkNZzL
FqBtattgtELCYrVLnikzJwsnsrYqJiI+c/acuUBT6G3AQAjjxAuCDRfbj9iVxaKo
0xEjivFfihOQNgjaFIM54wZXOOSUOd+P3mI54+wEW7dQOhZMTfmhoA0tal4w48AE
fMlp995eD3SIZfNPE526NmV30T7XVKyNtms78j0L/+FKGUhFrn3wFUbtleSsImbo
qKdvOb79ANh2F86omvBWRXVY3SJ1iwXFAyB9bffEQxuPjH9/L8JSq7lBEew1A0Nz
TEJfkwd65Wat9giZFFm2lG7mfJp3g+MSPN12wqgfNQUjUvxPZVUT7j5mbZo=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:13 2023 by rpki-client on console.sobornost.net